• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 312
  • Last Modified:

Windows 2003 RAS ip conflict?

Hi all,

This has been bugging me for some time and I cannot find an answer.  Looking for some help please...

The problem:

The server 2003 has a fixed ip address of and only 1 nic.
When clients connect in over pptp vpn using rras, they are allocated a dhcp address in that same range.
Most home routers use the same ip range so there is a conflict and, whilst the pptp connection is successful, clients cannot access email etc.

What I have been doing is getting staff to change their home dhcp scopes to and that works perfectly.

I am wondering what the correct solution to this problem is on the server side?  

In this setup it's actually sbs2003(sp1) and there are no complex routers/firewalls etc.  

Thanks for the help...

1 Solution
Rob WilliamsCommented:
I am afraid the solution is to change the server side as you suggested. If you plan to use VPN's, avoid setting up your network with common subnets such as,,,, and
Should you plan to change the server, make sure you plan carefully, all static IP's for servers, printers and such must be changed, and all DHCP addresses refreshed. VERY important on SBS you use the wizard to change the IP,, or many services such as sharepoint and web access features will stop working, if you do it manually.

There is one other possible option. On the client's virtual/VPN adapter, there is an option to use the remote gate way, located:
control panel | network connections | right click on the VPN/Virtual adapter and choose properties | Networking | TCP/IP -properties | Advanced | General | un-check  "Use default gateway on remote network"
If this is enabled, you can often connect with similar subnets. It is enabled by default, so perhaps you have been switching it of ?  This protects the corporate network from local traffic, but also blocks users from connecting to local resources at the client site such as shared printers and local Internet access. It should be enabled but a lot of people don't like the restrictions ans un-check it.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Train for your Pen Testing Engineer Certification

Enroll today in this bundle of courses to gain experience in the logistics of pen testing, Linux fundamentals, vulnerability assessments, detecting live systems, and more! This series, valued at $3,000, is free for Premium members, Team Accounts, and Qualified Experts.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now